I'm a technology, privacy, and information security reporter and most recently the author of the book This Machine Kills Secrets, a chronicle of the history and future of information leaks, from the Pentagon Papers to WikiLeaks and beyond.
I've covered the hacker beat for Forbes since 2007, with frequent detours into digital miscellania like switches, servers, supercomputers, search, e-books, online censorship, robots, and China. My favorite stories are the ones where non-fiction resembles science fiction. My favorite sources usually have the word "research" in their titles.
Since I joined Forbes, this job has taken me from an autonomous car race in the California desert all the way to Beijing, where I wrote the first English-language cover story on the Chinese search billionaire Robin Li for Forbes Asia. Black hats, white hats, cyborgs, cyberspies, idiot savants and even CEOs are welcome to email me at agreenberg (at) forbes.com. My PGP public key can be found here.

Google Glass Has Already Been Hacked By Jailbreakers

Just days after its release to developers, Google’s Glass headset has already been hacked to give users full control of its Android operating system, according to Jay Freeman, a well-known Android and iOS developer who tested a known exploit for Android on Glass yesterday and announced his success on Twitter Friday afternoon. The “root” or “jailbreak” technique Freeman found would potentially remove any restrictions Google might place on Glass, though it’s not yet clear exactly what those restrictions might be in consumer versions of the device.

Freeman, who goes by the hacker handle “Saurik” and created the widely-used app store for jailbroken iOS devices known as Cydia, told me in a phone interview that he discovered yesterday that Glass runs Android 4.0.4, and immediately began testing previously-known exploits that worked on that version of Google’s mobile operating system. Within hours, he found that he could use an exploit released by a hacker who goes by the name B1nary last year to gain full control of Glass’s operating system.

“It took me two hours while I was having dinner with friends at the time,” Freeman wrote to me. “The implementation from B1nary is for normal Android tablets and phones, I learned how it worked and then did the same thing on Glass…which was quite simple.”

A photo of Freeman's Google Glass display he took to demonstrate that he had gained "root" access to the device.

Freeman, who obtained his Glass unit through a program for developers, says he’s not exactly sure yet what gaining root access to Glass might make possible. (He says he hasn’t been able to use his much due to his own eyeglasses prescription, which has made focusing on the device’s display painful for more than a few minutes at a time.) But he speculates that jailbreaking Glass could make it possible to store data locally on the device or on Bluetooth-linked phone, rather than upload it automatically to Google’s servers, a measure that some privacy-conscious users may appreciate.

Freeman says he was able to hack Glass using the device’s debug mode and a flaw in its backup function that tricks the device into thinking it’s running as an emulation on a developer’s machine. As he described it to me:

You take a backup from the device, modify the backup, and then restore the modified backup to the device. While the backup is restoring, you make a change to the data being restored that redirects the data being restored to overwrite a critical configuration file. This makes the device think that it is not running on real hardware: you make it think it is instead running on the emulator used by Android developers to test their software on desktop/laptop computers. As the emulator is designed for developers, it has full control and gives you “root”.

Freeman isn’t the only hacker tinkering with Glass. Another developer named Liam McLoughlin had already achieved root access to Glass the day before, according to the blog 9to5Google. Update: Freeman clarifies below that

It’s not yet clear whether the exploits Freeman and McLoughlin used will work on consumer versions of Glass rather than developer versions. Freeman says that he spoke with a Google employee who was surprised that Freeman’s device had debug mode enabled, and commented that he thought it had been taken out of the latest version.

Unlike Apple, however, Google has long taken a friendly approach to those who hack its mobile devices, even allowing users and OEMs to root its devices with sanctioned methods. I’ve reached out to Google for comment on whether and how it will respond to developers hacking its new headset ahead of Glass’s 2014 release, and I’ll update this post if I learn more.

This much is clear: If Google does intend to keep a tight lock on Glass, it’s already a step behind the hackers who want to unlock it.

Update: Google staffer Tim Bray has responded to the jailbreak on Twitter and doesn’t seem very concerned. “Yes, Glass is hackable,” he writes. “Duh.”

Post Your Comment

Post Your Reply

Forbes writers have the ability to call out member comments they find particularly interesting. Called-out comments are highlighted across the Forbes network. You'll be notified if your comment is called out.

I really don’t know why someone would want to Jailbreak Google Glass. What would be the benefit of Jailbreaking? I wrote an article about this if anyone wants to check it out: http://thetechwaynews.com/2013/04/27/google-glass-gets-jailbroken/

up to I saw the bank draft that said $7146, I accept that…my… brother woz actualie bringing in money parttime from there new laptop.. there uncle has been doing this for less than eight months and at present cleared the loans on their villa and bought a great Lancia Straton. we looked here, go to this site home tab for more detail>>>>>> ℬig76 ℂℴℳ